| Package | Description |
|---|---|
| org.owasp.esapi |
The ESAPI interfaces and
Exception classes model the most
important security functions to enterprise web applications. |
| org.owasp.esapi.codecs |
This package contains codecs for application layer encoding/escaping schemes that can be used for
both canonicalization and output encoding.
|
| org.owasp.esapi.crypto |
This package contains ESAPI cryptography-related classes used throughout
ESAPI.
|
| org.owasp.esapi.errors |
A set of exception classes designed to model the error conditions that
frequently arise in enterprise web applications and web services.
|
| org.owasp.esapi.filters |
This package contains several filters that demonstrate ways of using the ESAPI security
controls in front of your application.
|
| org.owasp.esapi.reference |
This package contains reference implementations of the ESAPI interfaces.
|
| org.owasp.esapi.reference.accesscontrol | |
| org.owasp.esapi.reference.accesscontrol.policyloader | |
| org.owasp.esapi.reference.crypto |
This package contains the reference implementation for some of
the ESAPI cryptography-related classes used throughout ESAPI.
|
| org.owasp.esapi.waf |
This package contains the ESAPI Web Application Firewall (WAF).
|
| org.owasp.esapi.waf.rules |
This package contains all of the Rule subclasses that correspond to policy file entries.
|
| Modifier and Type | Method and Description |
|---|---|
Logger |
LogFactory.getLogger(java.lang.Class clazz)
Gets the logger associated with the specified class.
|
static Logger |
ESAPI.getLogger(java.lang.Class clazz) |
Logger |
LogFactory.getLogger(java.lang.String moduleName)
Gets the logger associated with the specified module name.
|
static Logger |
ESAPI.getLogger(java.lang.String moduleName) |
static Logger |
ESAPI.log() |
| Modifier and Type | Method and Description |
|---|---|
void |
HTTPUtilities.logHTTPRequest(javax.servlet.http.HttpServletRequest request,
Logger logger)
Format the Source IP address, URL, URL parameters, and all form
parameters into a string suitable for the log file.
|
void |
HTTPUtilities.logHTTPRequest(javax.servlet.http.HttpServletRequest request,
Logger logger,
java.util.List parameterNamesToObfuscate)
Format the Source IP address, URL, URL parameters, and all form
parameters into a string suitable for the log file.
|
| Modifier and Type | Field and Description |
|---|---|
private static Logger |
Base64.logger |
| Modifier and Type | Field and Description |
|---|---|
private static Logger |
SecurityProviderLoader.logger |
private static Logger |
PlainText.logger |
private static Logger |
KeyDerivationFunction.logger |
private static Logger |
CryptoToken.logger |
private static Logger |
CryptoHelper.logger |
private static Logger |
CipherTextSerializer.logger |
private static Logger |
CipherText.logger |
| Modifier and Type | Field and Description |
|---|---|
protected Logger |
IntrusionException.logger
The logger.
|
protected Logger |
EnterpriseSecurityRuntimeException.logger
The logger.
|
protected Logger |
EnterpriseSecurityException.logger
The logger.
|
| Modifier and Type | Field and Description |
|---|---|
private Logger |
SecurityWrapperResponse.logger |
private Logger |
SecurityWrapperRequest.logger |
private Logger |
SecurityWrapper.logger |
private Logger |
ESAPIFilter.logger |
| Modifier and Type | Class and Description |
|---|---|
private static class |
JavaLogFactory.JavaLogger
Reference implementation of the Logger interface.
|
class |
Log4JLogger
Reference implementation of the Logger interface.
|
| Modifier and Type | Field and Description |
|---|---|
private Logger |
FileBasedAuthenticator.logger
The logger.
|
private Logger |
DefaultUser.logger
The logger used by the class.
|
private Logger |
DefaultRandomizer.logger
The logger.
|
private Logger |
DefaultIntrusionDetector.logger
The logger.
|
private Logger |
DefaultHTTPUtilities.logger
The logger.
|
private Logger |
DefaultExecutor.logger
The logger.
|
private Logger |
DefaultEncoder.logger |
protected Logger |
DefaultAccessController.logger |
private Logger |
AbstractAuthenticator.logger |
| Modifier and Type | Field and Description |
|---|---|
private java.util.HashMap<java.io.Serializable,Logger> |
JavaLogFactory.loggersMap |
| Modifier and Type | Method and Description |
|---|---|
Logger |
Log4JLogFactory.getLogger(java.lang.Class clazz)
Gets the logger associated with the specified class.
|
Logger |
JavaLogFactory.getLogger(java.lang.Class clazz)
Gets the logger associated with the specified class.
|
Logger |
Log4JLogFactory.getLogger(java.lang.String moduleName)
Gets the logger associated with the specified module name.
|
Logger |
JavaLogFactory.getLogger(java.lang.String moduleName)
Gets the logger associated with the specified module name.
|
| Modifier and Type | Method and Description |
|---|---|
void |
DefaultHTTPUtilities.logHTTPRequest(javax.servlet.http.HttpServletRequest request,
Logger logger)
Format the Source IP address, URL, URL parameters, and all form
parameters into a string suitable for the log file.
|
void |
DefaultHTTPUtilities.logHTTPRequest(javax.servlet.http.HttpServletRequest request,
Logger logger,
java.util.List parameterNamesToObfuscate)
Formats an HTTP request into a log suitable string.
|
| Modifier and Type | Field and Description |
|---|---|
private Logger |
FileBasedACRs.logger
The logger.
|
protected Logger |
ExperimentalAccessController.logger |
| Modifier and Type | Field and Description |
|---|---|
(package private) Logger |
DynaBeanACRParameterLoader.logger |
protected Logger |
ACRPolicyFileLoader.logger |
| Modifier and Type | Field and Description |
|---|---|
private Logger |
ReferenceEncryptedProperties.logger
The logger.
|
private static Logger |
JavaEncryptor.logger |
private Logger |
DefaultEncryptedProperties.logger
The logger.
|
| Modifier and Type | Field and Description |
|---|---|
private Logger |
ESAPIWebApplicationFirewallFilter.logger |
| Modifier and Type | Field and Description |
|---|---|
protected static Logger |
Rule.logger |